Cybersecurity

Cyber Threat Intelligence, Alerts and Reports

As part of the AHA’s commitment to helping hospitals and health systems prepare for and prevent cyber threats, we have gathered the latest government cyber threat intelligence and alerts and Health Information Sharing and Analysis Center (H-ISAC) reports.

You may be asked to enter your AHA member credentials to view certain reports and intelligence alerts.

Cybersecurity & Risk Advisory

Learn how AHA can help hospitals and health systems prepare for and mitigate cyber threats through the expertise of John Riggi, AHA’s National Advisor for Cybersecurity and Risk.

Learn More

H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Threat Bulletin Palo Alto PAN-OS Firewall Flaw CVE-2025-0111 Used in Exploit Chaining Attacks
Palo Alto recently disclosed that PAN-OS firewalls vulnerable to CVE-2025-0111 are being used in exploit chain attacks.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 21, 2025
H-ISAC TLP Green Daily Cyber Headlines for February 21, 2025.
Sponsored Webinars
Event

Protecting Patient Safety at the Crossroads of AI, Cybersecurity and GRC
Protecting Patient Safety at the Crossroads of AI, Cybersecurity and GRCTuesday, March 25, 2025 1 - 2 p.m. Eastern; noon - 1 p.m. Central; 10 - 11 a.m. Pacific  
Headline
News

Agencies warn of Ghost ransomware activity
A joint advisory released Feb. 19 by the FBI, Cybersecurity and Infrastructure Security Agency and the Multi-State Information Sharing and Analysis Center warns of cybercriminal activity by the Ghost ransomware group.
Headline
News

Blog: Resources to Protect America’s Rural Hospitals from Cyberthreats

Rural hospitals’ limited access to technology, staff and financial resources constrains their ability to defend against the malicious actors behind today’s ever-escalating cyberattacks, writes John Riggi, AHA national advisor for cybersecurity and risk, in a new blog on protecting rural hospitals…
Cybersecurity Government Intelligence Reports
Cybersecurity Government Intelligence Reports

FBI Flash Report TLP Amber Consistent and Varied Targeting of FBI Public-Facing Networks between 1 July 2024 and 30 September 2024
The Federal Bureau of Investigation (FBI) is releasing this FLASH to disseminate indicators of compromise (IOCs) associated with malicious cyber activities targeting the FBI’s computer network between 1 July 2024 and 30 September 2024.
Headline
News

One year after Change Healthcare cyberattack, AHA report discusses lessons learned and continued need to mitigate risk

Nearly one year after the cyberattack on Change Healthcare, the AHA released a report highlighting the continued need for health care organizations to strengthen cybersecurity efforts and mitigate risk.  
Guides/Reports
Guides/Reports

Change Healthcare Cyberattack Underscores Urgent Need to Strengthen Cyber Preparedness for Individual Health Care Organizations and as a Field
The cyberattack on Change Healthcare in February 2024 disrupted health care operations on an unprecedented national scale.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Daily Cyber Headlines - February 19, 2025
H-ISAC TLP Green Daily Cyber Headlines for February 19, 2025.
H-ISAC: Green Reports
H-ISAC: Green Reports

H-ISAC TLP Green Ransomware Data Leak Sites Report - February 19, 2025
A daily ransomware tracker at TLP:GREEN for the purpose of increasing ransomware threat awareness.
Subscribe to Cybersecurity